Acceptable Use Policy

Effective: May 10, 2026  ·  Version 1.0

This Acceptable Use Policy (“AUP”) describes activities that are prohibited on the Service. It applies to anyone who accesses or uses Loft Tools, including unauthenticated visitors. This AUP is part of, and incorporated into, our Terms of Service.

We’ve kept the rules short and broad. The point isn’t to catch you on a technicality — it’s to protect users, the Service, and the operator.

1. Don’t break the law

Don’t use the Service to do anything illegal. Specifically:

• nothing that violates U.S. federal or California state law;
• nothing that violates the law of the jurisdiction you’re in or the jurisdiction your conduct affects;
• nothing that violates U.S. economic-sanctions or export-control laws (we do not knowingly serve users in jurisdictions subject to comprehensive U.S. sanctions);
• no facilitating money laundering, terrorism financing, or evasion of lawful sanctions;
• no fraud, identity theft, or impersonation.

2. Don’t harm people

Don’t use the Service to:

• create, store, transmit, or process child sexual abuse material (CSAM) in any form. We will report CSAM to the National Center for Missing & Exploited Children (NCMEC) and to law enforcement;
• create or distribute non-consensual intimate imagery (“revenge porn”), including AI-generated imagery of identifiable persons;
• harass, threaten, stalk, dox, or incite violence against any person;
• promote terrorism, extremist violence, or organised hate (against people based on race, ethnicity, national origin, religion, sex, gender identity, sexual orientation, disability, or similar protected characteristic);
• create deceptive synthetic media (deepfakes) intended to defraud, defame, or interfere with elections;
• engage in any conduct that endangers the safety of any person, including minors.

3. Don’t infringe others’ rights

Don’t use the Service to:

• infringe copyright, trademark, patent, trade-secret, publicity, privacy, or other proprietary or moral rights;
• circumvent technical protection measures or DRM in violation of applicable law;
• collect or scrape personal information about others without a lawful basis.

If you believe content on Loft Tools infringes your rights, see our DMCA Policy.

4. Don’t attack the Service or other users

Don’t:

• attempt to gain unauthorised access to the Service, accounts, infrastructure, or other users’ devices;
• probe, scan, or test the vulnerability of any system without our express written permission (responsible disclosure: see section 8);
• interfere with the Service, including via denial-of-service, traffic flooding, or sustained automated requests beyond reasonable rate limits;
• introduce viruses, worms, malware, or any other malicious code;
• bypass authentication, rate limits, abuse-prevention measures, or paywalls (we don’t have one yet, but the rule applies prospectively);
• scrape, mirror, or systematically copy the Service’s content other than via well-behaved general-purpose search-engine indexing that respects robots.txt and reasonable rate limits;
• use Loft Tools as a host or relay for unrelated services (no using our infrastructure as a CDN, proxy, or generic file host);
• attempt to extract, fingerprint, or reverse-engineer commercial trade-secret components of the Service;
• use the Service commercially — including white-labelling, embedding into a product or service you offer to others, hosting or providing it as a managed service, redistributing it, or any use by an entity with annual gross revenue over USD $1M — without first obtaining a written commercial licence. See Terms §6.1 and the License page.

5. Don’t abuse the donation channel

Don’t use any donation method to:

• launder funds;
• pay for the result of any tool, claim a paid feature, or buy any service from us (donations are not payments — see Terms of Service section 5);
• make a chargeback in bad faith after voluntarily donating.

6. Don’t use AI tools to produce harmful or restricted output

For any AI-powered or AI-assisted tool we offer (none enabled at launch; planned premium tools later), the following are prohibited regardless of the technical capability of the tool:

• generating CSAM, non-consensual intimate imagery, or content that sexualises minors;
• generating content that infringes a specific identifiable person’s likeness for impersonation or defamation;
• generating disinformation about elections, public health emergencies, or other matters of public concern with intent to deceive;
• generating content that materially assists in the planning, manufacture, or use of weapons capable of mass casualties (chemical, biological, radiological, nuclear, or large-scale conventional);
• generating material designed to evade content-moderation systems on other platforms.

We may refuse to serve, or terminate access for, any user who attempts the above.

7. Don’t use Loft Tools to break someone else’s rules

Don’t use the Service in a way that:

• violates the terms of service of a platform you intend to publish to;
• violates the academic-integrity policies of an institution you’re affiliated with (citation tools, OCR, and writing aids exist to help, not to cheat);
• breaches a confidentiality, non-disclosure, or contractual obligation you owe to a third party (for example, do not paste your employer’s confidential text into our tools if your employer prohibits external processing).

We can’t enforce other parties’ rules, but breaking them while using Loft Tools is still your responsibility.

8. Responsible disclosure

If you find a security vulnerability, please report it to [email protected]. Please:

• give us a reasonable opportunity to investigate and address the issue before public disclosure (we aim to acknowledge within 5 business days and to resolve critical issues within 30 days);
• only test against your own data;
• do not access, modify, or delete data belonging to others;
• do not perform denial-of-service testing.

We do not currently run a paid bug-bounty program, but we will publicly thank reporters of substantiated issues (with their permission) on the security page.

9. Enforcement

We may, at our sole discretion and without prior notice:

• remove or refuse content;
• limit, suspend, or terminate access for any user or any IP range;
• take any technical or legal step we reasonably believe necessary to protect the Service, the operator, other users, or third parties;
• preserve or disclose information as required by law or as necessary to enforce these rules.

We may, but are not obligated to, give notice or an opportunity to cure before acting. Suspension or termination does not entitle you to any refund of any donation. Repeat violations or a single severe violation may result in permanent termination.

10. Reporting abuse

To report abuse of the Service (other than copyright — see DMCA), email [email protected] with:

• the URL involved (if applicable),
• a description of the conduct,
• any screenshots or evidence,
• and your contact information for follow-up.

We respond promptly and prioritise child-safety, threat-of-harm, and active-attack reports.

11. Contact

• Acceptable-use questions / abuse: [email protected]
• Security: [email protected]
• Commercial licensing: [email protected]
• Other legal: [email protected]